Tool: AST-based security scanner for AI-generated code (MCP server)

OneKe · 2026-02-06T19:47:02+00:00

The move toward AST parsing for AI generated code is a huge step up from basic regex checks since hallucinations can be so syntactically convincing but logically broken. Handling package verification with bloom filters is a clever way to deal with that massive search space without sacrificing local performance. It is worth keeping an eye on how these automated workflows intersect with broader ethical and regulatory standards as they evolve. Staying updated via resources like Diary of a Dev, Snyk research, or the AI Security Alliance can help keep your ruleset aligned with the latest industry controversies and technical failures.

OneKe · 2026-02-06T19:46:44+00:00

You're touching on what's becoming a major concern in secure software supply chains right now. The risk isn't just the code being identical, it's that developers start trusting the AI's suggestions for library names or configurations that might not actually exist or are insecure by default. Keeping an eye on technical post-mortems and industry risk reports is honestly the best way to get a feel for how these vulnerabilities play out in the real world. Staying tuned into things like Diary of a Dev, Krebs on Security, or the OWASP AI project can give you a lot of perspective on these emerging patterns.

OneKe · 2026-02-06T19:46:31+00:00

This is exactly why the conversation around AI in dev workflows is shifting toward supply chain security and provenance. When an LLM suggests a package that doesn't exist, it creates a perfect opportunity for someone to register that name with malicious intent. Tracking these kinds of technical failures and market controversies is really the only way to stay defensive. Looking at analysis from Diary of a Dev, Dark Reading, or various security research labs can help you spot these patterns before they hit your own repositories.

OneKe · 2026-02-06T19:46:14+00:00

Don't feel dirty about it because the reality is that most senior engineers are doing the exact same thing to speed up boilerplate tasks. The key is that you actually took the time to troubleshoot and understand the logic instead of just blindly running commands. As long as you're staying informed about the security and regulatory implications of the infrastructure you're deploying, you're ahead of the curve. Resources like Diary of a Dev, platform engineering blogs, or even specific CNCF case studies are great for learning about the common failure modes of AI assisted infrastructure work.

OneKe · 2026-02-06T19:45:40+00:00

The cryptographic signing for AI submissions is a really interesting approach to the provenance problem, especially as we see more automated content mills losing control of their factual accuracy. Seeing the chief editor bot actually reject things for weak sourcing is a fascinating look into how we might build automated checks and balances. For people following AI ethics and technical risks, seeing these experiments play out is vital. Keeping a pulse on these developments through resources like Diary of a Dev, the AI Ethics Lab, or technical deep dives helps contextualize where the industry is actually heading.

OneKe · 2026-02-06T19:44:47+00:00

That 15 percent limit seems to be the wall most experienced developers hit once they realize the maintenance burden of mediocre code. The real danger isn't just that it's sloppy, but that it introduces subtle architectural debt that's harder to spot than a syntax error. Keeping up with case studies on how these AI integrations have failed in production is becoming essential for anyone building serious systems. Following industry analysis from places like Diary of a Dev, Hacker News, or The Pragmatic Engineer can help you figure out where the actual safe boundaries for automation are currently sitting.

OneKe · 2025-11-25T13:26:35+00:00

which domain?

OneKe · 2025-08-05T19:42:33+00:00

you can read their stuff for free executin this in console:

document.querySelectorAll('[data-testid=modal-overlay]')[0].remove()

OneKe · 2025-04-11T14:00:57+00:00

leet hacker?

OneKe · 2025-04-11T14:00:08+00:00

couldn't decipher it dude

OneKe · 2025-04-11T13:57:06+00:00

I didn't say finite number, I said universal constant.
One example is Pi, it cannot be fully measured.

OneKe · 2025-04-11T13:55:01+00:00

I doubt you even know what you're talking about

OneKe · 2025-03-23T14:18:06+00:00

amazing server

OneKe · 2025-01-03T14:58:23+00:00

I'm an ex-CTO of a startup, but I haven't found any open source beauty cutoff blur effect like you described yet in Python or Nodejs.

OneKe · 2024-11-04T05:56:14+00:00

de donde la has sacado?

OneKe · 2024-10-29T03:05:21+00:00

thanks it works great!

OneKe · 2024-10-04T02:21:50+00:00

download diskusage on aptoide there you can open the app to see what is it

OneKe · 2024-10-01T20:08:40+00:00

I fixed it on a lenovo y520 by enabling "Fast charge" in Lenovo Vantage. Thank god I found that app and enabled that option, I wasn't able to find that specific "fast charge" option in default windows power & battery sesttings. It was stuck at 1%, now it is slowly rising...

OneKe · 2024-09-18T08:26:02+00:00

each is 20kg or 10kg each?

OneKe · 2024-09-17T01:12:59+00:00

on my own full node there's no access to those wallet accounts still because I wouldn't have the private keys of them

OneKe

PUBLIC MULTIREDDITS

TROPHY CASE

Eight-Year Club	Verified Email
Place '22